pull down to refresh

948 sats \ 3 replies \ @steepdawn974 2 Jun 2023 \ on: Too Embarassed To Ask - Your Bitcoin & Lightning Questions Answered bitcoin

It safe to deterministically split your seed in two parts (e.g. words 1-6 ==> part1, and 7-12 ==> part2), and store them separately? Or can the whole seed be guessed/restored from just knowing one part?

write
preview
431 sats \ 0 replies \ @orthwyrm 3 Jun 2023

It's very difficult to brute force 6 words, but not beyond the realms of possibility. Here's an example of someone brute forcing the last 4 words of a 12 word seed phrase in a day:

https://medium.com/@johncantrell97/how-i-checked-over-1-trillion-mnemonics-in-30-hours-to-win-a-bitcoin-635fe051a752

Note: It's much easier to bruteforce the last word as this is just a checksum.

But the BEST reason not to do this is because it's just inferior to using a passphrase. Both are 2-of-2 schemes, but a passphrase is A) Easier to memorise, B) Gives you plausible deniability with the seed-only wallet and C) Is an industry standard supported by every hardware wallet.

reply
100 sats \ 0 replies \ @Lumor 3 Jun 2023

Don't do it, having 6 of the words makes the last 6 feasible to brute force:

https://btctranscripts.com/andreas-antonopoulos/2020-04-08-andreas-antonopoulos-seed-splitting/

reply
0 sats \ 0 replies \ @1sats 3 Jun 2023

deleted by author